Hello,

I have obatined admin access to a box and have a reverse cryptcat session polling back to my static IP every hour if the session dies.. ie i have Win32 cmd line access.

I can upload to the the server using TFTP on their server
I can establish outbound connection on any port but nothing in..

I have installed VNC and other remote-see-the-screens back door but for what ever reason this is not allowed and does not work so i need to do everything command line.. .<trust me I have tried many times and all possibilites>

I would like to go deeper into the network and scan other boxes and need CMD tools to do some vulnerability scanning.

Besides the basic port scanning and enumeration tools has anyone got any other new crafty CMD tools, ie bruteforce, ARPspoofing ( that doesnt need drivers to be installed (becuase i cant reboot or Ill loose the session) that could help and assist in my attack..

Regards,

Thanks.

Why not install a decent trojan, if you are not going to reboot that box,
im quite sure someone else will sooner or later
For cmdline portscanning u could just use nmap, for arp spoofing u can
compile wci by FX of phenoelit. There are various other tools incl. cmd line bruteforce tools whidely available on all the well known sec sites.

Look for a trojan that supports SIN (reverse connection) so that it connects to your ip rather than you having to open a port on that machine. It also sounds like you might need a trojan that does NAT traversal. Something like Lanfiltrator might work.

Use the new beast v 2.05 whit syn connection or taladrator trojan, and dont install the vnc, is much better the radmin

i think optix support reverse connection too..

if you want reverse conection use the new beast 2.05 whit his option syn port or taladrator

why do you need to see the desktop? i mean isnt command line enough?
ps: can you please post the commands you used to make the reverse shell with cryptcat? thanks

mmm not optix supports the reverse connection,... assasin does..

%00@
he is right...